2024-06-26 16:01:41 -04:00
|
|
|
trigger:
|
2025-05-08 13:35:44 -04:00
|
|
|
- main
|
2024-06-26 16:01:41 -04:00
|
|
|
|
2024-07-03 17:39:06 -04:00
|
|
|
# the `resources` specify the location and version of the 1ES Pipeline Template (PT).
|
|
|
|
|
resources:
|
|
|
|
|
repositories:
|
2025-05-08 13:35:44 -04:00
|
|
|
- repository: 1ESPipelineTemplates
|
|
|
|
|
type: git
|
|
|
|
|
name: 1ESPipelineTemplates/1ESPipelineTemplates
|
|
|
|
|
ref: refs/tags/release
|
2024-06-26 16:01:41 -04:00
|
|
|
|
2024-07-03 17:39:06 -04:00
|
|
|
extends:
|
|
|
|
|
# this pipeline extends an existing 1ES PT which injects various SDL and compliance tasks
|
|
|
|
|
template: v1/1ES.Official.PipelineTemplate.yml@1ESPipelineTemplates
|
|
|
|
|
parameters:
|
|
|
|
|
pool:
|
|
|
|
|
name: OCTO1ES_HostedPool
|
|
|
|
|
image: SMTOCTO1ESAgentWindowsVM
|
|
|
|
|
os: windows
|
|
|
|
|
sdl:
|
|
|
|
|
skipComponentGovernanceDetection: false
|
|
|
|
|
policheck:
|
|
|
|
|
enabled: true
|
|
|
|
|
sourceAnalysisPool:
|
|
|
|
|
name: OCTO1ES_HostedPool
|
|
|
|
|
image: SMTOCTO1ESAgentWindowsVM
|
|
|
|
|
os: windows
|
|
|
|
|
stages:
|
|
|
|
|
- stage: Component_Governance
|
|
|
|
|
jobs:
|
2025-05-08 13:35:44 -04:00
|
|
|
- job: CG_Prep
|
|
|
|
|
steps:
|
|
|
|
|
# Component Governance (CG) does not support pyproject.toml yet.
|
|
|
|
|
# For this reason, we export dependencies into a requirements.txt file.
|
|
|
|
|
# CG will auto-detect the requirements.txt file and use it to scan for dependencies.
|
|
|
|
|
- script: |
|
|
|
|
|
pip install poetry poetry-plugin-export
|
|
|
|
|
poetry export --directory=backend --format=requirements.txt --without-hashes --without-urls --all-extras --all-groups -o requirements.txt
|
|
|
|
|
displayName: "Export python dependencies to requirements.txt for CG"
|
